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Amendmen t* to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims 
in the application: 

T iafin g of Claims; 

Claim 1 (currently amended) 

Claim 2 (cancelled) 

Claim 3 (cancelled) 

Claim 4 (currently amended) 

Claims (previously amended) 

Claim 6 (previously amended) 

Claim 7 (currently amended) 

Claim 8 (cancelled) 

Claim 9 (cancelled) 

Claim 10 (currently amended) 

Claim 11 (original) 

Claim 12 (currently amended) 

Claim 13 (cancelled) 

Claim 14 (currently amended) 

Claim 15 (original) 

Claim 16 (original) 

Claim 17 (currently amended) 

Claim 18 (cancelled) 

Claim 19 (cancelled) 

Claim 20 (currently amended) 
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Claim 21 (original) 

Claim 22 (currently amended) 

Claim 23 (cancelled) 

Claim 24 (currently amended) 

Claim 25 (original) 

Claim 26 (original) 
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Amendments tn the Claims: 

1. (Currently Amended) 

A secure electronic data storage and retrieval system with the electronic 
data stored therein maintained secure from the repository manager, comprising: 

a data repository; 

a repository manager for managing storage and retrieval of encrypted 
electronic data of a depositing computer into and out of the data repository; 

an agent program of the depositing computer, accessible to the repository 
manager whether the depositing computer is online or off-line, the agent 
program having means in an environment secure from the repository manager 
to decrypt, on authentication of a requesting computer, the encrypted electronic 
data of the depositing computer retrieved from the data repository on request of 
the requesting computer[[.J] i 

where the repository manager is far ther adapted to digitally sign the 
encrypted electronic data prior to storage in the d ata repository, and to forward 
a cony of the signed encrypted data to the agent program of the depositing 
computer, and wherein the agent prog ram of the depositing computer is 
ada pted to verify in the environmen t secure from the repository manager 
apaimt the signed encrvoted data, t he retrieved encrypted electronic data 
following decryption: and 

where the agent program is further adapted to forward the decrypted 
electronic data, directly from the environment secure from the repository 
mana pftr to the requesting computer wit hout providing access to the repository 
manager. 
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2. (Cancelled) 

3. (Cancelled) 

4. (Currently amended) 

The system, according to claim [[3]] L wherein the agent program is a 
secure extension of the depositing computer and is adapted to manage 
communications between the depositing computer and the repository manager. 

5. (Previously Amended) 

The system, according to claim 4, further comprising a server having 
communication links with the repository manager, the depositing computer and 
the requesting computer, the server housing: 

the agent program of the depositing computer and the environment secure 
from the repository manager; 

a second environment comprising a secure extension of the repository 
manager, said second environment adapted to manage communications to and 
from other environments on the server with the repository manager, and 

at least a third environment comprising a secure extension of the 
requesting computer, said third environment adapted to manage 
communications to and from other environments on the server with the 
requesting computer. 
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6. (Previously Amended) 

The system, according to claim 5, wherein the agent program of the 
depositing computer comprises means to encrypt and digitally sign electronic 
data received from the depositing computer, and to forward me encrypted 
electronic data and signature to the repository manager for storage in the 
depositing computers data repository. 

7. (Currently Amended) 

A process for aiimenticating user access to electronic data stored in a 
data repository secure from a repository manager unrelated to a source of the 
electronic data, comprising: 

associating an access control list of user authorizations with the 
electronic data when stored in the data repository in an environment secure 
from the repository manager; 

effecting updates to the access control list only from the source of the 

electronic data; 

storing the updated access control list with the electronic data stored in 
the data repository in an environment secure from the repository manager, 

storing evidence of the updated access control list at the source of the 
electronic data and at any user computer to have effected the update; aad- 

verifying accuracy of the updated access control list stored with the 
electronic data in the data repository with the evidence stored at the source 
before releasing the electronic data to a requesting authorized user[[.]] i 

identifying a revision level of the updated access co ntrol list: 

agcnniBtinp; a current tim ft stam p with the update d access control list, 
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where the step of storing evidence comprises: 

r.rt>atin ff a token of the revision level and curre nt frine stamp: 
storing the token at every user with ac cess to the electronic data in 

the data repository: 

attaching the token to the undated access control list to fo rm a data 

structure: 

digitally sig"'"F Hata structure; 

stopn p rtw» signe d data structure with the updated a ccess control list in 
the data repository and at the source: and 

where the step of verifying accuracy of the updated access control list 

comprises: 

verifying decrypting the data structure sifmature at the source: and 
comparing the verified data structure with the updated access 
control list retrieved from the data repository, 

8. (Cancelled) 

9. (Cancelled) 

10. (Currently amended) 

The process of claim [[8]] 7, wherein the step of storing evidence further 

comprises: 

digitally signing the token; and 
storing the signed token at the source. 
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11. (Original) 

The process of claim 10, further comprising: 

forwarding the digitally signed token to a user authorized by the source to 
update the access control list; and 

on presentation of the digitally signed token by the user authorized to 
update the access control list, 

verifying the token signature at the source; and 

comparing the verified token with the revision level and current time 
stamp associated with the updated access control list retrieved from the data 
repository. 

12. (Currently Amended) 

A process for secure storage and retrieval of electronic data in a remote 
data repository, comprising: 

digitally signing the electronic data at a source; 

encrypting the electronic data at the source; 

forwarding the encrypted electronic data to the data repository; 

digitally signing the encrypted electronic data at the data repository to 
produce a deposit receipt; 

storing the encrypted electronic data and deposit receipt in the data 
repository in an environment free of access by the data repository manager, and 

returning a copy of the deposit receipt to the source[[.]] i 

receiving a request from a requesting u ser, for access to the stored 

electronic data: 

retrieving the encrypted electronic data and f orwarding the retrieved data 
to the source: 
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verifyin g the reaues*™ p ™f ag authorized to access the electronic data; 

and 

if verified, decrypting the retrieved data bv Hie source and send ing it 
directly to the requesting user wilhout providing access to the data by the 
repository manager. 



13. (Cancelled) 



14. (Currently Amended) 

The process, according to claim [[13]] 12, further comprising: 
associating an access control list of user authorizations with the 

electronic data when stored in the data repository in the environment free of 

access by the depository manager; 

effecting updates to the access control only list from me source of the 

electronic data; 

storing the updated access control list with the electronic data stored in 

the data repository; and 

storing evidence of the updated access control list at the source and at 
every user with authorized access to the electronic data in the data repository in 
areas free from access by the depository manager. 

15. (Original) 

The process, according to claim 14, wherein the step of verifying the 
requesting user as authorized comprises locating the requesting user on the 
updated access control list. 
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16. (Original) 

The process, according to claim 15, further comprising me step of 
verifying accuracy of the updated access control list stored with the electronic 
data in the data repository with the evidence stored at the source before 
releasing the electronic data to the requesting user. 



17. (Currently Amended) 

A computer program product on a computer usable medium for 
authenticating user access to electronic data stored in a data repository secure 
from a repository manager unrelated to a source of the electronic data, said 
computer program product comprising: 

computer software for associating an access control list of user 
authorizations with the electronic data when stored in the data repository in 
an environment secure from the repository manager, 

computer software for effecting updates to the access control list from the 
source of electronic data; 

computer software for storing the updated access control list with the 
electronic data stored in the data repository in an environment secure from the 

repository manager; 

computer software for storing the evidence of the updated access control 
list at the source of the electronic data and at any user computer to have 
effected the update;-asd- 

computer software for verifying accuracy of the updated access control 
list stored with the electronic data in the data repository with the evidence 
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stored at the source before releasing the electronic data to a requesting 

authorized user[[.]] I 

where Die computer software for effecti ng updates to the access control 

list comprises: 

computer software for identifying a rev ision level of the updated 

access control list: and 

computer software for associating a c urrent time stamp with the 

updated access control list: and 

where the step of storing evi dence comprises: 

com puter software for creati n g a token of rt» revision level and 

current time stamp: and 

com puter software for storing t he token at every user with accessts 

the electronic data in th e data repository: 

com puter software for attach-i n? the token to the updated access 

control list to form a da ta structure: 

com puter software for digitally signing the data structure: 

com puter software for storing the sif ted data structure with the updated 

access control list in the d ata repository and at the source: and 

where the software for verifying accuracy of the updat ed access control 

list comprises: 

com puter software for verifying decrypting the data structure 

si gnature a t the source: and 

^m piiter software for comparing the verified data structure with 

the u pdated ar-ftess control list retrieved from the data repository. 
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18. (Cancelled) 

19. (Cancelled) 

20. (Currently Amended) 

The program product of claim [[1SJ\ 17, wherein the computer software 
for storing evidence farther comprises: 

computer software for digitally signing the token; and 
computer software for storing the signed token at the source. 

21. (Original) 

The program product of claim 20, further comprising: 

computer software for forwarding the digitally signed token to a user 
authorized by the source to update the access control list, and 

on presentation of the digitally signed token by the user authorized to 
update the access control list, 

verifying the token signature at the source; and 

comparing the verified token with the revision level and current time 
stamp associated with the updated access control list retrieved from the data 
repository. 



22. (Currently Amended) 

A computer program product on a computer for secure storage and 
retrieval of electronic data in a remote date repository, comprising: 

computer software for digitally signing the electronic data at a source; 

computer software for encrypting me electronic data at the source; 
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computer software for forwarding the encrypted electronic data to the 
data repository; 

computer software for storing the encrypted electronic data and deposit 
receipt in the data repository in an environment free of access by the data 
depository manager; and 

computer software for returning a copy of the deposit receipt to the 

source[[.]li 

co mputer software for receiving a request from a requesting user, for 
access to the stored electronic data; 

computer software for retrieving the encrypted electronic data and 
forwarding the retrieved data the source: 

computer software for verifying the r equesting user as authorized to 

access the electronic data; and 

com puter software at the source fo r decrypting the retrieved data when 
verified and sending it directly to the requ esting user without providing access 
to the data repository manager. 

23. (Cancelled) 

24. (Currently Amended) 

The computer program product according to claim [[18]} 12> further 

comprising: 

computer software for associating an access control list .of user 
authorizations with the electronic data when stored in the data repository in an 
environment free of access by the depository manager; 
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computer software for effecting updates to the access control list only 
from the source of the electronic data; 

computer software for storing the updated access control list with the 

electronic data stored in the data repository; and 

computer software for storing evidence of the updated access control Ust 
at the source and at every user with authorized access to the electronic data in 
the data repository in areas free from access by the depository manager. 



25. (Original) 

The computer program product according to claim 24, wherein the 
computer software for verifying the requesting user as authorized comprises 
computer software for locating the requesting user on the updated access 
control list 



26. (Original) 

The computer program product according to claim 25, further comprising 
computer software for verifying accuracy of the updated access control Ust 
stored with the electronic data in the data repository with the evidence stored at 
the source before releasing the electronic data to the requesting user. 
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